VYPR
Vendor

Snorkel Team

Products
1
CVEs
3
Across products
3
Status
Private

Products

1

Recent CVEs

3
  • CVE-2026-31224HigMay 12, 2026
    risk 0.57cvss 8.8epss 0.00

    The snorkel library thru v0.10.0 contains an insecure deserialization vulnerability (CWE-502) in the MultitaskClassifier.load() method of the MultitaskClassifier class. The method loads model weight files using torch.load() without enabling the security-restrictive…

  • CVE-2026-31223HigMay 12, 2026
    risk 0.57cvss 8.8epss 0.00

    The snorkel library thru v0.10.0 contains a critical insecure deserialization vulnerability (CWE-502) in the BaseLabeler.load() method of the BaseLabeler class. The method loads serialized labeler models using the unsafe pickle.load() function on user-supplied file paths without…

  • CVE-2026-31222HigMay 12, 2026
    risk 0.57cvss 8.8epss 0.00

    The snorkel library thru v0.10.0 contains an insecure deserialization vulnerability (CWE-502) in the Trainer.load() method of the Trainer class. The method loads model checkpoint files using torch.load() without enabling the security-restrictive weights_only=True parameter. This…